CWE-1259: CWE-1259

This vulnerability allows attackers to cause Denial-of-Service (DoS) by sending malicious JWE tokens with extreme compression ratios to servers using ...

A vulnerability in the Money Making Opportunity (MMO) ERC721 NFT smart contract allows users to transfer NFTs to the zero address (0x0), resulting in ...

This CVE describes an information disclosure vulnerability in WSO2 products where authenticated users can access sensitive business data from other me...

This vulnerability in Gatling Enterprise allows users who have logged out to continue using their session tokens indefinitely due to improper session ...

Clinical Collaboration Platform 12.2.1.5 has a session token vulnerability where logout doesn't invalidate tokens, allowing attackers to hijack sessio...

KubePi versions 1.6.3 through 1.7.x have a critical JWT authentication bypass vulnerability. Attackers can forge valid JWT tokens using an empty signi...

TitanSystems Zender v3.9.7 has a critical authentication bypass vulnerability where password reset tokens are not properly bound to specific user acco...

A CORS misconfiguration in Nginx Proxy Manager v2.12.3 allows unauthorized domains to access sensitive data like JWT tokens due to improper Origin hea...

This vulnerability involves improper page table protection configuration in Huawei's trusted firmware module, potentially allowing unauthorized access...